HashiCorp Certified: Vault Associate (002) — Question 49

An organization would like to use a scheduler to track & revoke access granted to a job (by Vault) at completion.
What auth-associated Vault object should be tracked to enable this behavior?

Answer options

• A. Token accessor
• B. Token ID
• C. Lease ID
• D. Authentication method

Correct answer: A

Explanation

The correct answer is A, Token accessor, because it is used to track the access associated with a specific token and can be utilized to revoke access when the job is complete. The other options, while related to tokens, do not provide the necessary tracking for revocation; Token ID is the unique identifier of the token itself, Lease ID pertains to the expiration of the token, and Authentication method refers to the method by which a user is authenticated, none of which directly enable tracking and revocation of access.